← back
CVE-2008-2901

CVE-2008-2901

EPSS 0.9%
Multiple SQL injection vulnerabilities in Haudenschilt Family Connections CMS (FCMS) 1.4 allow remote authenticated users to execute arbitrary SQL commands via the (1) address parameter to addressbook.php, the (2) getnews parameter to familynews.php, and the (3) poll_id parameter to home.php in a results action.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/30680https://exchange.xforce.ibmcloud.com/vulnerabilities/43097https://www.exploit-db.com/exploits/5811http://www.securityfocus.com/bid/29722